Services / Activities:- Attack Surface Management and Risk Quantification: Identifying and managing potential points of vulnerability (attack surface) and assessing associated risks.
- Gaps Assessment and Remediation: Evaluating existing cybersecurity measures against NIST CSF to identify gaps and providing remediation strategies.
- Security Policy Development, Enforcement, Review, and Enhancement: Developing, enforcing, reviewing, and enhancing security policies to establish and maintain a secure organizational environment. Relevant security standards shall be utilised such as but not restricted to NIST 800-171r5, OWASP Recommendations for System / Software Development Lifecycle and similar.
- Discovery, Classification, and Governance of Sensitive Data: Identifying, classifying, and governing sensitive data across different environments, ensuring compliance and security.
- Regular Security Assessments: Conduct planned activities to assess vulnerabilities, threats associated with network, endpoints, applications, user access and management and such.
|